CVE-2011-5217

Published Oct 25, 2012

Last updated 7 years ago

Overview

Description: Directory traversal vulnerability in the PXE Mtftp service in Hitachi JP1/ServerConductor/DeploymentManager before 08-55 Japanese and before 08-51 English allows remote attackers to read arbitrary files via unknown vectors.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-22

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:*:-:enterprise:en:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5E96B97-60C3-4FCA-A85D-AA5F68F7831B",
            "versionEndIncluding": "08-07"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:*:-:standard:en:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8F1247E-3C72-40D7-BCF2-F2F7D6F3B123",
            "versionEndIncluding": "08-07"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:08-06:-:enterprise:en:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F55D6F5-574A-4B86-8D2F-B86B5173088E"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:08-06:-:standard:en:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A8203B3-A09C-4313-BE11-0E0C9986561A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:*:-:enterprise:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F16D3D69-9C86-43C8-9110-7387A0FDC3BB",
            "versionEndIncluding": "08-50-\\/b"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:*:-:standard:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76E4CE54-1CC5-4A4F-85C4-D86179123567",
            "versionEndIncluding": "08-50-\\/b"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:07-52:-:enterprise:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "112BEB28-36B9-49AD-A786-95BBFCDFD24B"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:07-52:-:standard:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F3F8588-AA42-420F-9802-E45A14D160CC"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:07-56:-:enterprise:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1137B8CB-0B66-4ED3-8DBF-49BE3AEA4F5D"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:07-56:-:standard:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15940A05-56A1-444C-B728-F864DB54B792"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:07-56-\\/g\\(\\*2\\):-:enterprise:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60399797-B6F8-425E-8637-36C94CC0CF99"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:07-56-\\/g\\(\\*2\\):-:standard:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DD38B1D-3C6E-4C0E-A54F-D2E3614DD8A0"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:08-00:-:enterprise:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C32FA86-5E9A-4D38-93CC-20CCB0E4619D"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:jp1\\/serverconductor\\/deploymentmanager:08-00:-:standard:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F325EFD6-D7AE-4782-9CD8-6AC584E8049D"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hitachi:serverconductor\\/deploymentmanager:*:-:-:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "752795DF-956B-4CD0-8F31-3778154AFF3D",
            "versionEndIncluding": "06-00-\\/a"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:serverconductor\\/deploymentmanager:01-00:-:-:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38C687C7-5D6C-43F7-912B-38A53A295C79"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:serverconductor\\/deploymentmanager:01-01:-:-:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0BDD9FF-E3F8-4069-8AB5-0768D1251E2F"
          },
          {
            "criteria": "cpe:2.3:a:hitachi:serverconductor\\/deploymentmanager:06-00:-:-:ja:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDE8E789-253F-4229-BCA5-AC3ABBF2FAF3"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References